Lucene search
K

116 matches found

NVD
NVD
added 2004/11/23 5:0 a.m.15 views

CVE-2004-0267

The 1 inoregupdate, 2 uniftest, or 3 unimove scripts in eTrust InoculateIT for Linux 6.0 allow local users to overwrite arbitrary files via a symlink attack on files in /tmp...

2.1CVSS6.5AI score0.00462EPSS
Exploits0References8
Cvelist
Cvelist
added 2004/09/01 4:0 a.m.19 views

CVE-2002-1516

rpcbind in SGI IRIX, when using the -w command line switch, allows local users to overwrite arbitrary files via a symlink attack...

6.5AI score0.00331EPSS
Exploits0References4
Cvelist
Cvelist
added 2003/11/18 5:0 a.m.12 views

CVE-2003-0950

PeopleSoft PeopleTools 8.1x, 8.2x, and 8.4x allows remote attackers to execute arbitrary commands by uploading a file to the IClient Servlet, guessing the insufficiently random system time name of the directory used to store the file, and directly requesting that file...

7.6AI score0.02057EPSS
Exploits0References3
NVD
NVD
added 2003/05/05 4:0 a.m.19 views

CVE-2003-0136

psbanner in the LPRng package allows local users to overwrite arbitrary files via a symbolic link attack on the /tmp/before file...

2.1CVSS6AI score0.0039EPSS
Exploits0References4
NVD
NVD
added 2003/03/07 5:0 a.m.18 views

CVE-2003-0120

adb2mhc in the mhc-utils package before 0.25+20010625-7.1 allows local users to overwrite arbitrary files via a symlink attack on a default temporary directory with a predictable name...

1.2CVSS6.2AI score0.00303EPSS
Exploits0References3
OSV
OSV
added 2002/12/31 5:0 a.m.6 views

CVE-2002-2267

bogopass in bogofilter 0.9.0.4 allows local users to overwrite arbitrary files via a symlink attack on the bogopass temporary file...

6.6AI score
Exploits0References3
Cvelist
Cvelist
added 2002/03/15 5:0 a.m.23 views

CVE-2002-0141

Maelstrom GPL 3.0.1 allows local users to overwrite arbitrary files of other Maelstrom users via a symlink attack on the /tmp/f file...

6.3AI score0.00295EPSS
Exploits0References3
Cvelist
Cvelist
added 2002/03/15 5:0 a.m.25 views

CVE-2002-0137

CDRDAO 1.1.4 and 1.1.5 allows local users to overwrite arbitrary files via a symlink attack on the $HOME/.cdrdao configuration file...

6.3AI score0.00752EPSS
Exploits0References2
Cvelist
Cvelist
added 2001/11/22 5:0 a.m.26 views

CVE-2001-0832

Vulnerability in Oracle 8.0.x through 9.0.1 on Unix allows local users to overwrite arbitrary files, possibly via a symlink attack or incorrect file permissions in 1 the ORACLEHOME/rdbms/log directory or 2 an alternate directory as specified in the ORACLEHOME environmental variable, aka the "Orac...

6.1AI score0.00489EPSS
Exploits0References2
CERT
CERT
added 2001/11/15 12:0 a.m.33 views

Netscape vulnerable to arbitrary file overwriting via symlink redirection of temporary file

Overview During installation, Netscape 6.0.1 creates a temporary file with insecure options and a predictable name in a world-writable location. By using a symbolic link attack, an attacker could cause overwrite of arbitrary files. Description The installation script for Netscape 6.0.1 creates a...

2.1CVSS6.2AI score0.00333EPSS
Exploits0References1
Cvelist
Cvelist
added 2001/09/12 4:0 a.m.21 views

CVE-1999-1378

dbmlparser.exe CGI guestbook program does not perform a chroot operation properly, which allows remote attackers to read arbitrary files...

6.7AI score0.01335EPSS
Exploits0References1
Cvelist
Cvelist
added 2001/07/27 4:0 a.m.19 views

CVE-2001-0582

Ben Spink CrushFTP FTP Server 2.1.6 and earlier allows a local attacker to access arbitrary files via a '..' dot dot attack, or variations, in 1 GET, 2 CD, 3 NLST, 4 SIZE, 5 RETR...

6.4AI score0.00558EPSS
Exploits1References3
Cvelist
Cvelist
added 2001/01/22 5:0 a.m.23 views

CVE-2000-0080

AIX techlibss allows local users to overwrite files via a symlink attack...

6.2AI score0.00302EPSS
Exploits0References2
NVD
NVD
added 2000/10/20 4:0 a.m.24 views

CVE-2000-0702

The net.init rc script in HP-UX 11.00 S008net.init allows local users to overwrite arbitrary files via a symlink attack that points from /tmp/stcp.conf to the targeted file...

7.2CVSS6.3AI score0.01151EPSS
Exploits1References3
Cvelist
Cvelist
added 2000/08/03 4:0 a.m.18 views

CVE-2000-0646

WFTPD and WFTPD Pro 2.41 allows remote attackers to obtain the real pathname for a file by executing a STATUS STAT command while the file is being transferred...

6.8AI score0.02205EPSS
Exploits1References2
NVD
NVD
added 1998/02/06 5:0 a.m.16 views

CVE-1999-1269

Screen savers in KDE beta 3 allows local users to overwrite arbitrary files via a symlink attack on the .kss.pid file...

2.1CVSS0.00297EPSS
Exploits0References2
Rows per page
Query Builder